$ rpki-client -vvf rpki.apnic.net/member_repository/A9149E50/2DD7638C924111EFA56CCE21C4F9AE02/7LSEAFYEaoqTIoTqXx4EagIzHOk.mft File: 7LSEAFYEaoqTIoTqXx4EagIzHOk.mft (raw, json) Hash identifier: cNMyuLl2ffaE0KDYqHMqahHvgkVzNapMXVs8UHgnCrY= Subject key identifier: 99:D0:3B:E0:37:5A:3E:85:D1:E6:F9:04:FD:6A:37:E8:C1:6A:3B:C8 Authority key identifier: EC:B4:84:00:56:04:6A:8A:93:22:84:EA:5F:1E:04:6A:02:33:1C:E9 Certificate issuer: /CN=A9149E50/serialNumber=ECB4840056046A8A932284EA5F1E046A02331CE9 Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LSEAFYEaoqTIoTqXx4EagIzHOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149E50/2DD7638C924111EFA56CCE21C4F9AE02/7LSEAFYEaoqTIoTqXx4EagIzHOk.mft Manifest number: 81 Signing time: Thu 19 Jun 2025 06:05:27 +0000 Manifest this update: Thu 19 Jun 2025 06:05:27 +0000 Manifest next update: Thu 26 Jun 2025 06:05:27 +0000 Files and hashes: 1: 7LSEAFYEaoqTIoTqXx4EagIzHOk.crl (hash: mG914p2Y59dpqKA0lUaI/WU5QNkaROPC+OVpEqkAfp8=) 2: 99AA0D12924111EFB764DA22C4F9AE02.roa (hash: /mhXFSUm8wgJtNfejG+rJ98B0FGC7kHmpO9IfNRXQCI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149E50/2DD7638C924111EFA56CCE21C4F9AE02/7LSEAFYEaoqTIoTqXx4EagIzHOk.crl rsync://rpki.apnic.net/member_repository/A9149E50/2DD7638C924111EFA56CCE21C4F9AE02/7LSEAFYEaoqTIoTqXx4EagIzHOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LSEAFYEaoqTIoTqXx4EagIzHOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 06:05:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149E50, serialNumber=ECB4840056046A8A932284EA5F1E046A02331CE9 Validity Not Before: Jun 19 06:05:27 2025 GMT Not After : Jun 26 06:05:27 2025 GMT Subject: CN=6853a8a7-fd98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:33:33:01:77:ca:3c:77:db:cd:17:66:ba:53: fa:7d:ae:bb:6f:15:a4:b3:29:37:a6:40:46:e3:d3: 37:8d:78:16:e7:7e:91:b6:a5:5f:6c:57:35:0f:b7: bd:e7:64:b1:26:94:f5:3b:1f:0f:e4:49:bc:13:66: 50:06:db:84:13:41:83:89:51:56:df:d6:41:1e:7c: bc:e8:cb:c8:dd:27:ec:40:26:a1:94:03:d5:6d:45: da:07:ae:6e:03:84:a5:64:0e:46:8d:65:3b:fe:2d: 5d:31:ca:4e:91:98:67:1b:8a:74:3a:c8:28:56:ea: 34:38:4d:dd:3b:ed:e2:4b:b5:2f:13:90:da:91:4b: 7f:17:a4:cd:cc:c9:34:1e:e0:8c:e1:08:2f:ab:e5: ad:68:7d:2a:65:c7:10:b7:13:1a:fc:3a:70:f1:00: 80:6e:b4:88:45:8e:d4:e9:b3:e5:6f:e5:9e:f0:80: ae:a8:4f:be:6b:4e:f2:2d:ae:6f:fc:96:3e:17:27: 3c:5f:95:91:e8:8f:56:23:19:35:f5:02:fc:10:e8: 0c:fc:51:ac:39:66:1a:b5:5b:2f:c8:8a:f1:cb:8f: 5e:59:e6:3e:de:e5:8c:67:93:48:1e:5f:d7:ba:d8: 52:8b:fa:2c:83:d3:1f:65:3a:74:3e:59:c3:e3:e7: 16:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:D0:3B:E0:37:5A:3E:85:D1:E6:F9:04:FD:6A:37:E8:C1:6A:3B:C8 X509v3 Authority Key Identifier: keyid:EC:B4:84:00:56:04:6A:8A:93:22:84:EA:5F:1E:04:6A:02:33:1C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149E50/2DD7638C924111EFA56CCE21C4F9AE02/7LSEAFYEaoqTIoTqXx4EagIzHOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LSEAFYEaoqTIoTqXx4EagIzHOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149E50/2DD7638C924111EFA56CCE21C4F9AE02/7LSEAFYEaoqTIoTqXx4EagIzHOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:27:60:d6:8c:4a:26:4f:ee:b8:0a:21:85:7b:d6:55:cb:60: 1b:d5:fe:61:2b:81:42:68:d3:c6:8b:c7:bc:d3:d1:d3:f7:54: 91:4d:b8:9c:88:cc:da:35:bf:39:bd:81:55:57:95:ea:fa:e2: 3b:c5:76:0f:4c:29:9b:01:f4:9f:29:5a:54:00:ce:f0:c3:4d: 1e:33:81:c0:db:71:af:91:87:02:33:7b:bb:17:99:4c:b6:f7: 12:c1:29:c4:29:b0:a2:2a:f6:bb:1d:8f:52:3d:64:c5:90:2c: c8:9c:f4:89:33:b5:01:7a:08:61:f3:46:0e:b3:60:e4:dd:ac: bb:9a:f3:c2:80:a5:e3:7d:06:02:a0:1a:8c:36:2a:0c:6c:9d: a7:5a:b5:42:63:ca:35:bb:d2:97:6a:3d:dc:a0:59:14:92:4e: bf:d5:1b:9a:2e:7b:c4:31:da:fd:37:d5:e8:63:b8:26:0a:86: 6b:8d:9f:e2:88:65:05:81:81:ef:b6:e7:1e:a0:2e:1f:44:e0: 5f:bf:11:63:2d:ca:ab:90:1a:30:59:42:35:58:80:19:07:80: 63:94:86:9f:fd:ee:6f:14:bf:89:1c:de:ec:3a:cc:4d:23:40: 77:ba:8f:a1:bb:4f:ad:4e:5f:b7:5e:dd:6b:13:d9:35:56:c7: b4:bd:19:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlFNTAxMTAvBgNVBAUTKEVDQjQ4NDAwNTYwNDZBOEE5MzIyODRFQTVGMUUwNDZB MDIzMzFDRTkwHhcNMjUwNjE5MDYwNTI3WhcNMjUwNjI2MDYwNTI3WjAYMRYwFAYD VQQDEw02ODUzYThhNy1mZDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4DMzAXfKPHfbzRdmulP6fa67bxWksyk3pkBG49M3jXgW536RtqVfbFc1D7e9 52SxJpT1Ox8P5Em8E2ZQBtuEE0GDiVFW39ZBHny86MvI3SfsQCahlAPVbUXaB65u A4SlZA5GjWU7/i1dMcpOkZhnG4p0OsgoVuo0OE3dO+3iS7UvE5DakUt/F6TNzMk0 HuCM4Qgvq+WtaH0qZccQtxMa/Dpw8QCAbrSIRY7U6bPlb+We8ICuqE++a07yLa5v /JY+Fyc8X5WR6I9WIxk19QL8EOgM/FGsOWYatVsvyIrxy49eWeY+3uWMZ5NIHl/X uthSi/osg9MfZTp0PlnD4+cWdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJnQO+A3 Wj6F0eb5BP1qN+jBajvIMB8GA1UdIwQYMBaAFOy0hABWBGqKkyKE6l8eBGoCMxzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUU1MC8yREQ3NjM4Qzky NDExMUVGQTU2Q0NFMjFDNEY5QUUwMi83TFNFQUZZRWFvcVRJb1RxWHg0RWFnSXpI T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdMU0VBRllFYW9xVElvVHFYeDRFYWdJekhPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUU1MC8yREQ3NjM4QzkyNDExMUVGQTU2Q0NFMjFDNEY5QUUwMi83TFNFQUZZRWFv cVRJb1RxWHg0RWFnSXpIT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1J2DWjEomT+64CiGFe9ZVy2Ab1f5hK4FCaNPGi8e809HT91SRTbic iMzaNb85vYFVV5Xq+uI7xXYPTCmbAfSfKVpUAM7ww00eM4HA23GvkYcCM3u7F5lM tvcSwSnEKbCiKva7HY9SPWTFkCzInPSJM7UBeghh80YOs2Dk3ay7mvPCgKXjfQYC oBqMNioMbJ2nWrVCY8o1u9KXaj3coFkUkk6/1RuaLnvEMdr9N9XoY7gmCoZrjZ/i iGUFgYHvtuceoC4fROBfvxFjLcqrkBowWUI1WIAZB4BjlIaf/e5vFL+JHN7sOsxN I0B3uo+hu0+tTl+3Xt1rE9k1Vse0vRn6 -----END CERTIFICATE-----Generated at Fri Jun 20 14:33:14 2025 by rpki-client